Policy and billing services in a cloud-based access solution for enterprise deployments

ABSTRACT

Systems and methods for providing mobile services are disclosed. In one implementation, an access point (AP) is provided, which may include a set of one or more base-station functions for use by a user equipment (UE) connected to the AP over a wireless communication interface. The one or more base-station functions may be configured to receive information from the UE. The AP may further include a set of one or more core-network functions configured to receive the information from the set of one or more base-station functions and a distributed portion of a service. The distributed portion of the service may be configured to receive the information from the one or more core-network functions and communicate the information to a corresponding cloud portion of the service running on a cloud platform. The service may be provided by a combination of the distributed portion and the cloud portion of the service. The distributed portion of the service may be further configured to receive a response from the cloud portion of the service based on processing performed by the cloud portion on the cloud platform.

CROSS-REFERENCE TO RELATED APPLICATIONS

This application is a continuation of U.S. application Ser. No.15/150,364, filed May 9, 2016, which claims the benefits of U.S.Provisional Application Ser. No. 62/158,959, filed May 8, 2015, U.S.Provisional Application Ser. No. 62/163,624, filed May 19, 2015, U.S.Provisional Application Ser. No. 62/163,743, filed May 19, 2015, U.S.Provisional Application Ser. No. 62/164,949, filed May 21, 2015, andU.S. Provisional Application Ser. No. 62/165,018, filed May 21, 2015,which are each hereby incorporated by reference in their entireties.This application also relates to co-pending U.S. application Ser. No.15/150,374, filed May 9, 2016, also hereby incorporated by reference inits entirety.

FIELD OF INVENTION

The present invention relates to a wireless access infrastructure and,more particularly, to a novel cloud-based wireless access solution thatcan be integrated with enterprise deployments.

BACKGROUND

A conventional wireless access infrastructure includes a radio accessnetwork and a core network typically owned, managed, and controlled by asingle wireless service provider called the wireless carrier. The radioaccess network, such as the Evolved Universal Terrestrial Radio Access(E-UTRA) defined in 3GPP's Long Term Evolution (LTE) standard, containsthe network and equipment for connecting user equipment (UE), such asmobile devices and computers having wireless connectivity, to the corenetwork. The core network, such as the Evolved Packet Core (EPC) definedin the LTE standard, contains the network and equipment for providingmobile voice and data services within the carrier's service environmentand to external networks, such as the Internet, and other carriers'networks.

The LTE standard, for example, defines specific network nodes andcommunication interfaces for implementing the E-UTRA and EPC. Accordingto the standard, the E-UTRAN includes one or more eNodeB (base stations)configured to communicate with UEs and the EPC core network. The EPCincludes at least a Mobility Management Entity (MME), which managessession states, authentication, paging, and mobility and roamingfunctions; a packet-data gateway (PGW), which sends/receives datapackets to/from an external data network, such as the Internet; aServing Gateway (SG-W), which routes data packets between the PGW and aneNodeB; and a Policy and Charging Rules Function (PCRF), which managesusers, applications, and network resources based on carrier-configuredrules.

FIG. 1 is a schematic block diagram of an exemplary LTE wireless accessinfrastructure 1000 including an E-UTRAN 1100 and an EPC 1200. TheE-UTRAN 1100 includes at least one eNodeB 1102 configured to communicatewith UEs 1002A and 1002B over wireless links. The EPC 1200 containsnetwork nodes including a MME 1202, SG-W 1204, PGW 1206, and PCRF 1208.While the exemplary infrastructure 1000 is depicted with only one PGW1206 connected to an external packet-data network, such as the Internet,the EPC 1200 alternatively may contain multiple PGWs, each connectingthe EPC 1200 to a different packet data network. The MME 1202, SG-W1204, PGW 1206, and PCRF 1208 are implemented in software on dedicatedhardware (computers) 1302, 1304, 1306, and 1308. The dedicated hardwaremay be a single server or a cluster of servers. The LTE network nodes1202, 1204, 1206, and 1208 are typically implemented as monolithicsoftware modules that execute on their respective dedicated hardware1302, 1304, 1306, and 1308.

The LTE standard not only defines functionalities in each of the MME1202, SG-W 1204, PGW 1206, and PCRF 1208, but also defines thecommunication interfaces between them. The LTE standard defines severalinterfaces including, for example, an “S1-MME” interface between theeNodeB 1102 and the MME 1202, an “S1-U” interface between the eNodeB1102 and the SG-W 1204, an “S11” is an interface between the MME 1202and the SG-W 1204, an “S5” interface between the SG-W 1204 and the PGW1206, and a “Gx” interface between the PCRF 1208 and the PGW 1206. Theexemplary infrastructure 1100 illustrates these standardized interfaces.

Because the communication interfaces and network nodes in the LTEwireless access infrastructure 1000 are standardized, they ensurecompatibility between the MME 1202, SG-W 1204, PGW 1206, and PCRF 1208,even when those nodes are programmed and/or developed by differentmanufacturers. Such standardization also ensures backward compatibilitywith legacy versions of any nodes that may have been previously deployedin the infrastructure 1000.

The need for multiple, dedicated network nodes makes deployment of anLTE wireless access infrastructure, such as the exemplary infrastructure1000, costly and complex. Specifically, IP-centric enterprise solutionswith typical web-based interfaces and protocols do not generally workseamlessly with the 3GPP-based standardized functions and interfaces.For example, the interfaces of a typical Cloud-based service in theenterprise say, based on HTTPS are not easy to connect to 3GPP nodeswith standardized interfaces such as S1 over SCTP. The standardizednodes and interfaces in conventional wireless access infrastructuresalso make scaling the infrastructure challenging. For example, it may bedifficult to deploy only a subset of the functions and/or communicationinterfaces defined by the standard. Furthermore, conventional wirelessaccess infrastructures may not utilize resources efficiently within theinfrastructure. In some conventional wireless access solutions, forexample, a UE may be denied voice and/or data services because one ofthe network nodes is unable to handle an additional user even thoughother nodes are not being fully utilized. In other words, the capacityof the conventional infrastructure may be limited by the capacity ofeach node.

SUMMARY

The invention provides a novel cloud-based wireless access system andmethod using services. The disclosed embodiments of the invention may beconfigured to provide one or more functions of a conventional wirelessaccess infrastructure, such as an E-UTRA radio access network and/or EPCcore network defined in the LTE standard. The functions provided by theservices may include, for example, an authentication function, a policyfunction, and a location function, among others, which in the past wouldhave been implemented by executing monolithic applications on dedicatedhardware (e.g., MME, SG-W, PGW, and PCRF) via standardized interfaces(e.g., S11 and S1-MME). Each service may include both a cloud portionand a distributed portion, whereby the cloud portion may communicatewith its corresponding distributed portion using known cloud interfacesand protocols, such as HTTPS/TLS. As a result, the disclosed embodimentsmay use less hardware, fewer interfaces, and are more configurable thanprior wireless access infrastructures.

An access point (AP) may be used to provide wireless network access toone or more UEs in an enterprise network in accordance with thedisclosed embodiments. To that end, the AP may provide a set of one ormore eNodeB functions and a set of one or more EPC functions for each UEin communication with the AP. In some embodiments, the one or moreeNodeB functions may be configured to receive information from the UEand pass that information to the one or more EPC functions allocated forthe UE. The AP may include a distributed portion of a service configuredto receive the information from the one or more EPC functions andcommunicate the information to a corresponding cloud portion of theservice running on a cloud platform. The cloud portion of the service onthe cloud platform may return response information to its distributedportion on the AP. For example, the cloud portion of the service maycommunicate with a server or service implementing at least one billingor policy function, and based on information it receives from such apolicy or billing source, the cloud portion of the service may sendresponse information to its distribution portion. In the case of apolicy service, for example, the cloud portion of the service may sendat least one policy rule to the distributed portion, which may providethe policy rule to one or more EPC functions for further processing.Additionally, the cloud portion of the service may cause a networkdevice (such as a network router or switch) to be configured in asoftware-defined networking architecture based on the policy rule. Inthe case of a billing service, for example, the cloud portion of theservice may forward charging-related configuration information to itscorresponding distributed portion of the service, which in turn mayprovide the charging-related configuration information to one or moreEPC functions that may use the configuration information, e.g., tomeasure network usage.

In accordance with some of the disclosed embodiments, a method performedby an AP executing a set of one or more base-station functions for useby a UE, a set of one or more core-network functions, and a distributedportion of a service, may include: receiving, by the set of one or morebase-station functions, information from the UE; receiving, by the setof one or more core-network functions, the information from the set ofone or more base-station functions; receiving, by the distributedportion of the service, the information from the one or morecore-network functions; communicating the information to a correspondingcloud portion of the service running on a cloud platform, wherein theservice is provided by a combination of the distributed portion and thecloud portion of the service; and receiving a response from the cloudportion of the service based on processing performed by the cloudportion on the cloud platform. Persons of ordinary skill in the art willappreciate that the cloud-based wireless access infrastructure disclosedherein may contain other distributed and cloud portions of services, inaddition to or in place of the exemplary policy and billing servicesdescribed in the illustrative embodiments below.

BRIEF DESCRIPTION OF THE DRAWINGS

The accompanying drawings, which are incorporated in and constitute apart of this disclosure, illustrate various disclosed embodiments. Inthe drawings:

FIG. 1 is a schematic block diagram of an example conventional LTEwireless infrastructure.

FIG. 2 illustrates a schematic block diagram of an exemplary cloud-basedwireless access infrastructure in accordance with the disclosedembodiments.

FIG. 3 illustrates a schematic block diagram of the exemplarycloud-based wireless access infrastructure of FIG. 2 showing additionalimplementation details in accordance with the disclosed embodiments.

FIG. 4 illustrates a schematic block diagram of the exemplarycloud-based wireless access infrastructure of FIGS. 2 and 3 showingadditional implementation details in accordance with the disclosedembodiments.

FIG. 5A illustrates schematic block diagram of exemplary PolicyManagement Services in accordance with the disclosed embodiments.

FIG. 5B illustrates a schematic block diagram of exemplary BillingManagement Services in accordance with the disclosed embodiments.

FIGS. 6A-C are flow diagrams of processes for obtaining policy rules inaccordance with the disclosed embodiments.

FIG. 7 is a flow diagram of a process for providing billing-relatedfunctions in accordance with the disclosed embodiments.

FIG. 8 is a flow diagram illustrating a sequence of steps that may beperformed by an AP in accordance with the disclosed embodiments.

DETAILED DESCRIPTION OF DISCLOSED EMBODIMENTS

The following detailed description refers to the accompanying drawings.Wherever possible, the same reference numbers are used in the drawingsand the following description to refer to the same or similar parts.While several illustrative embodiments are described herein,modifications, adaptations and other implementations are possible. Forexample, substitutions, additions, or modifications may be made to thenodes and steps illustrated in the drawings, and the illustrativemethods described herein may be modified by substituting, reordering,removing, or adding steps to the disclosed methods. Accordingly, thefollowing detailed description is not limited to the disclosedembodiments and examples. Instead, the proper scope of the invention isdefined by the appended claims.

FIG. 2 illustrates a block diagram of an exemplary cloud-based wirelessaccess infrastructure 2000 in accordance with the disclosed embodimentsof the invention. The exemplary cloud-based wireless accessinfrastructure 2000 may provide one or more access points (AP) 2110through which users may communicate to access standardized wirelessvoice and/or data services, such as defined in the LTE standard, as wellas enterprise-level applications and services that would be available tothe user in an enterprise network of a corporate, governmental,academic, non-profit, or other organization or entity. For example, inaccordance with the disclosed embodiments, an organization may deploy anAP 2110 in a building to provide its employees in that building withwireless access to both LTE and enterprise-level services.

The exemplary cloud-based wireless access infrastructure 2000 includesat least first and second UEs 2120A-B, one or more antennas 2130, one ormore APs 2110, one or more network devices 2150, a network controller2500, a cloud platform 2200, an enterprise network 2300, and an internetprotocol exchange (IPX) 2400.

As shown in FIG. 2, each of the UEs 2120A-B may communicate with the AP2110 through the antenna 2130 electrically coupled to the AP 2110. Whilea single antenna is shown in FIG. 2, the cloud-based wireless accessinfrastructure 2000 may alternatively employ multiple antennas, eachelectrically coupled to the AP 2110. In some embodiments, one or moreantennas 2130 may connect to the AP 2110 and other antennas may connectto different APs in the same wireless access infrastructure. The AP 2110may be implemented on one or more computer systems. The AP 2110, forexample, may execute one or more software programs on a single computeror on a cluster of computers. Alternatively, the AP 2110 may beimplemented as one or more software programs executing on one or morevirtual computers.

In the disclosed embodiments, the AP 2110 may be connected to one ormore network devices 2150, which may be configured to forward databetween the UEs 2120A-B (via the AP 2110) and external data networks,such as the Internet 2600 and/or the cloud platform 2200. The networkdevices 2150 may include, for example, a hub, switch, router, virtualswitches/router, distributed virtual switch (vSwitch), DHCP server,encrypted tunnel end-point manager and/or any combination thereof.

In some embodiments, at least a subset of the network devices 2150 maybe dynamically configured by a software-defined networking (SDN)controller. For example, as shown in FIG. 2, a SDN controller 2500 mayconfigure one or more layer-two devices (e.g., switches) or layer-threedevices (e.g., routers) in the set of network devices 2150, such thatdata packets or frames may be routed, processed, and/or blocked at thenetwork devices based on various parameters, such as, but not limitedto, the origin or destination of the data, type of data, and/or carrieror enterprise policies. Additionally, or alternatively, the SDNcontroller 2500 may configure at least a subset of the network devices2150 to provide different qualities of service (QoS) to different UEsbased on one or more policies associated with each UE. For example, theSDN controller 2500 may configure the one or more network devices 2150to ensure that the UE 2120A, which may be associated with a businesscustomer, receives a higher QoS compared with the UE 2120B, which may beassociated with a non-business customer.

In some embodiments, the SDN controller 2500 may configure one or moreof the network devices 2150 based on data (including, for example,messages, notifications, instructions, measurements, authorizations,approvals, or other information) received from one or more servicesrunning in the cloud-based wireless access infrastructure 2000. Forexample, the SDN controller 2500 may receive instructions on how andwhich of the network devices 2150 to configure from a service on thecloud platform 2200.

In accordance with the disclosed embodiments, the cloud platform 2200may communicate with the enterprise network 2300 and/or the IPX 2400. Insome embodiments, the cloud platform 2200 may include direct connectionsto the enterprise network 2300, as shown in FIG. 2. Alternatively, thecloud platform 2200 may employ indirect connections (not shown in thefigures), such as using the Internet 2600 (via the network device 2150),to communicate with the enterprise network 2300. For example, the cloudplatform 2200 may communicate with the enterprise network 2300 throughthe Internet 2600 using a tunneling protocol or technology, such as theIPSec protocol, or may communicate with an LTE EPC 1200 node of anothercarrier via the IPX 2400 using one or more standardized interfaces, suchas the Gy, Gz, Gx, and S6a interfaces as defined in the LTE standard. InFIG. 2, the enterprise network 2300 is shown to be separate, butelectrically coupled, with the cloud platform 2200. In other embodiments(not shown), however, the enterprise network 2300 may be implemented onthe cloud platform 2200.

FIG. 3 illustrates another illustrative block diagram of the exemplarycloud-based wireless access infrastructure 2000 of FIG. 2 in accordancewith the disclosed embodiments. FIG. 3 illustrates additionalimplementation details of the AP 2110, cloud platform 2200, andenterprise network 2300 that may be used in the exemplary cloud-basedwireless access infrastructure 2000.

As shown in FIG. 3, the AP 2110 may be configured to execute one or moreinstances of a software program configured to implement functions of abase station and one or more instances of a software program configuredto implement functions of a core network. For example, in FIG. 3, eNodeBFunctions 2112A-B represent at least two instances of a software programconfigured to provide at least a subset of functions of an LTE basestation, such as the eNodeB 1102. Similarly, EPC Functions 2114A-Brepresent at least two instances of a software program configured toprovide at least a subset of functions of an LTE core network, such asthe EPC 1200. In some embodiments, the AP 2110 may be configured toexecute one or more instances of a single software program configured toimplement both the eNodeB Functions and EPC Functions.

In some embodiments, a fixed number of instances of eNodeB Function2112A-B and a fixed number of instances of EPC Function 2114A-B may beinstantiated and maintained in the AP 2110. The number of instances ofthe eNodeB Functions 2112A-B and the number of instances of the EPCFunctions 2114A-B may be the same or different. In some embodiments,when a UE 2120A wirelessly connects to the AP 2110, an existing instanceof eNodeB Function 2112A and an existing instance of EPC Function 2114Amay be assigned to handle communications with the UE 2120A. In otherembodiments (e.g., when existing instances of eNodeB Function 2112A andEPC Function 2114A are unavailable to assign to the UE 2120A), the AP2110 may instantiate a new instance of an eNodeB Function and a newinstance of an EPC Function for the UE 2120A. In alternativeembodiments, the AP 2110 may dynamically instantiate and assign a newinstance of eNodeB Functions and a new instance of EPC Functions foreach UE.

According to the disclosed embodiments, an instance of the eNodeBFunctions 2112A may be configured to provide all radio-related functionsneeded to send/receive data to/from a UE 2120A. For example, an instanceof eNodeB Function 2112A may perform at least a subset of functions ofan eNodeB as defined in the LTE standard including, but not limited to,functions of a physical (PHY) layer, media access control (MAC) layer,radio resource management (RRM), and/or self-organizing network (SON).Functions of a PHY layer (as defined in the LTE standard) may include,for example, channel coding, rate matching, scrambling, modulationmapping, layer mapping, pre-coding, resource mapping, orthogonalfrequency-division multiplexing (ODFM), and/or cyclic redundancychecking (CRC). Functions of MAC layer (as defined in the LTE standard)may include, for example, scheduling, multiplexing, and/or hybridautomatic repeat request (HARQ) operations. Functions of RRM (as definedin the LTE standard) may include, for example, allocating, modifying,and releasing resources for transmission over the radio interfacebetween a UE 2120A and the AP 2110. Functions of a SON (as defined inthe LTE standard) may include, for example, functions to self-configure,self-optimize, and self-heal the network devices 2150. Alternatively, oradditionally, an instance of eNodeB Function 2112A may perform at leasta subset of functions of an element equivalent to an eNodeB in otherwireless standards, such as, but not limited to, functions of a basetransceiver station (BTS) as defined in the GSM/EDGE standard or a NodeBas defined in the UMTS/HSPA standard. In some embodiments, a UE 2120Amay wirelessly connect to the AP 2110 in the 3.5 GHz shared band.

According to the disclosed embodiments, an instance of eNodeB Function2112A may be further configured to send/receive data to/from acorresponding instance of EPC Function 2114A. However, in contrast withthe conventional wireless access infrastructure 1000 of FIG. 1 that onlyuses standardized communication interfaces, an instance of the eNodeBFunction 2112A in the AP 2110 may communicate with an instance of theEPC Function 2114A also executing in the AP 2110 using any interface orprotocol. Because the eNodeB and EPC Functions execute on the same AP2110, they do not need to be constrained to standardized communicationinterfaces. Instances of eNodeB Functions 2112A and EPC Functions 2114Amay communicate with one another using, among other things,language-level method or procedure calls, remote-procedure call (RPC),Simple Object Access Protocol (SOAP), or Representational State Transfer(REST).

In accordance with the disclosed embodiments, an instance of the EPCFunctions 2114A may be configured to provide at least some functions ofa core network. For example, the exemplary instance of EPC Function2114A may include functions such as, but not limited to, at least asubset of functions of the MME 1202, PGW 1206, SG-W 1204, and/or PCRF1208 of EPC 1200 as defined in the LTE standard. An instance of the EPCFunction 2114A, for example, may include a Mobility Management Function(MMF) which may perform at least a subset of functions of the MME 1202(e.g., authentication functions) and the Optimized Packet Function (OPF)which may perform at least a subset of functions of the SG-W 1204 nodeand/or the PGW 1206 node (e.g., forwarding packets between the UE 2120Aand one or more external data networks, such as the Internet 2600 andIPX 2400 via the appropriate Cloud service).

In contrast with the MME 1202 node defined in the LTE standard, the MMFexecuting in the AP 2110 may communicate with the OPF using any protocolbecause both functions are implemented in the same EPC Function 2114A.On the other hand, in the EPC 1200, the MME 1202 node is connected tothe SG-W 1204 using the standardized interface S 1I and the SG-W 1204 isconnected to the PGW node using the standardized interfaces S5/S8. Inthe disclosed embodiments, for example, the MME 1202 and the OPF nodemay communicate with one another using language-level methods orprocedure calls, RPC, SOAP, or HTTP/REST.

Advantageously, an instance of eNodeB Function 2112A and/or EPC Function2114A may implement the functions (or a subset of functions) of theeNodeB 1102 and/or the EPC 1200 using one or more services in accordancewith the disclosed embodiments. For example, a service 2210A may includea distributed portion 2212A and a cloud portion 2214A. The distributedportion 2212A may be implemented within the AP 2110 and may provideapplication programming interfaces (APIs) that may be accessible byinstances of eNodeB Functions 2112A-B and/or EPC Functions 2114A-B. Thecloud portion 2214A of the service 2210A may be utilized by instances ofthe eNodeB Functions 2112A-B and/or EPC Functions 2114A-B through theassociated distributed portion 2212A running on the AP 2110.

Unlike the conventional wireless access infrastructure 1000, theexemplary cloud-based wireless access infrastructure 2000 may utilizeavailable resources more efficiently, in part, because the services(e.g., 2110 A-B) share the same pool of cloud-platform resources, andfurther, the cloud platform 2200 may dynamically reallocate resources toand from each service based on the service's resource needs. Forexample, in the cloud-based wireless access infrastructure 2000, thecloud platform 2200 may dynamically allocate computing resources, suchas memory and CPU time, to various services based on each service'sreal-time demand for such resources. In contrast, a predetermined amountof resources would be dedicated to each node in the conventionalwireless access infrastructure 1000, and these resources cannot bedistributed among the other nodes dynamically. Therefore, situations mayexist in the conventional wireless access infrastructure 1000 where theUE 1002A is denied service because one of the nodes (e.g., the MME 1202of the EPC 1200) does not have sufficient amount of resources availablefor the UE 1002A, even when resources of other nodes have not been fullyutilized.

The cloud-based wireless access infrastructure 2000 also has theadvantage of enabling simplified network implementations relative to theconventional wireless access infrastructure 1000. Because the AP 2110 inthe disclosed embodiments is configured to implement one or more eNodeBFunctions and EPC Functions, which conventionally were not deployed atthe same server, the AP may leverage optimizations that previously werenot available, such as combining the implementations of one or more ofthe eNodeB Functions and EPC Functions. In the context of LTE, forexample, optimizations that combine one or more base-station and/orcore-network functions in the AP, or that enable other optimizations interms of resource management and/or allocations, may provide simplifiedLTE network implementations that were previously not possible. Moregenerally, the cloud-based wireless access solution herein may beadvantageously used to simplify and optimize implementations of varioustypes of wireless access networks and is not limited to LTE-basedsolutions.

Moreover, the capacity of the exemplary cloud-based wireless accessinfrastructure 2000 may be simpler and easier to scale up or downcompared with the capacity of the conventional wireless accessinfrastructure 1000. For example, the capacity of the cloud-basedwireless access infrastructure 2000 may be increased by adding moreresources available to the cloud platform 2200 and/or to the AP 2110. Incontrast, capacities of multiple EPC 1200 nodes may need to be increasedto increase the capacity of the conventional wireless accessinfrastructure 1000.

According to the disclosed embodiments, the cloud portion 2214A of theservice 2210A may be implemented on the cloud platform 2200. Examples ofcloud platforms include, Eucalyptus (an open-source cloud platform),Open Stack (an open-source cloud platform), and Amazon Web Service(AWS). In some embodiments, the cloud portion 2214A of the service 2210Amay be stateless and communicate with the distributed portion 2212A ofthe service 2210A using a protocol supported by the cloud platform 2200(e.g., HTTP/REST and SOAP are supported by AWS). In some disclosedembodiments, the cloud portion 2214A of the service 2210A may utilize acloud portion 2214B of another service 2210B. In other disclosedembodiments, a cloud portion 2214C of a service 2210C may communicatewith a conventional core network node in IPX 2400 by a standardizedinterface. In some embodiments, the cloud portion 2214C of the service2210C may communicate with a server/application (e.g., Enterpriseidentity and Authentication Application (EIAA) 2310) of the enterprisenetwork 2300. And in some embodiments, the cloud portion 2214C of theservice 2210C may communicate with the SDN controller 2500 to provideinstructions on how and which network devices of the network devices2150 to configure/reconfigure. In some embodiments, a service may have acloud portion only (i.e., without corresponding distributed portions),such as the cloud portion 2114B of the service 2210B.

In some embodiments of the invention, the distributed portion 2212A ofthe service 2210A, in addition to exposing APIs to instances of eNodeBFunctions 2112A-B and/or EPC Functions 2114A-B, may provide additionalfunctions, such as caching. For example, when an API of the distributeportion 2212A of the service 2210A is being utilized to request data,the distributed portion 2212A, prior to communicating with itsassociated cloud portion 2214A to obtain the requested data, maydetermine whether the data is cached and/or whether the cached data isstill valid.

FIG. 4 illustrates a block diagram of the exemplary cloud-based wirelessaccess infrastructure 2000 of FIGS. 2 and 3 in accordance with thedisclosed embodiments. FIG. 4 illustrates additional implementationdetails that may be included in the exemplary cloud platform 2200,including various examples of services that may be used by instances ofthe EPC Functions 2114A-B. The exemplary services include, for example.User ID Service 2210, Operation, Administration, and Management Service2220, Authorization Management Service 2230, and Policy ManagementService 2240.

The Authorization Management Service 2230 may be configured toauthenticate a UE 2120A by communicating with the EIAA 2310 and/or oneor more authentication nodes (e.g., HSS nodes) of external carriers inthe IPX 2400. As shown in FIG. 4, the Authorization Management Service2230 may include a distributed portion (“D-AMF”) and a correspondingcloud portion (“C-AMF”), which is configured to communicate with theD-AMF. In some embodiments, the D-AMF may be stateless and implementedas a software program executing in the AP 2110, separate from theinstances of software program(s) executing for the EPC Functions 2114A-Band eNodeB Functions 2112A-B, but still accessible by at least some ofthe instances of EPC Functions and eNodeB Functions. In someembodiments, communications between the D-AMF and the C-AMF may beencrypted, for example, using TLS or IPSec.

In accordance with some embodiments, the Authorization ManagementService 2230 may authenticate the UE 2120A by using authentication andkey agreement procedures, such as Evolved Packet System Authenticationand Key Agreement (EPS AKA) and/or XOR-based algorithms, which maycreate keying materials for the RRC (Radio Resource Control) signaling,NAS (Non-Access Stratum) signaling, ciphering keys, and integrity keys.An authentication and key agreement procedure may be initiated, forexample, after an LTE ATTACH request from the UE 2120A.

In some embodiments, an LTE ATTACH request (the first step of an ATTACHprocedure) may be sent from the U E 2120A to the AP 2110 when the UE2120A is powered on and during the UE 2120A's initial access to the AP2110. In some embodiments, the AP 2110 and the UE 2120A may useIMSI-based or GUTI-based ATTACH procedures, and an IP address(IPv4/IPv6) may be provided to the UE 2120A during the ATTACH procedure.In some embodiments, an instance of the eNodeB Function 2112A mayforward information typically contained in an ATTACH Request message (asdefined in the LTE standard) to the MMF of the corresponding instance ofEPC Function 2114A. At least a portion of the information contained inthe ATTACH Request message may be received from the UE 2120A. In someembodiments, the instance of the eNodeB Function 2112A may forwardadditional information such as the Selected Network, Tracking AreaIdentity (TAI), and EUTRAN Cell Global Identifier (ECGI) of the cellfrom where it received the message to the MMF of the correspondinginstance of EPC Function 2114A.

As noted previously, the cloud platform 2200 may further includeservices having cloud portions only (i.e., without correspondingdistributed portions), such as the cloud portion 2114B of the service2210B. These services may include, for example, IntegratedAuthentication Management (IAM) Service, Skype Service, and PolicyService, and these types of services may communicate with other cloudportions of services. In some embodiments, the cloud platform 2200 mayfurther include Emergency Management Service, Lawful Intercept Service,Roaming Management Service, and Paging Optimization Service, to provideadditional examples.

FIG. 5A illustrates exemplary Policy Management Service 2240 of FIG. 4in accordance with the disclosed embodiments. The Policy ManagementService 2240 may be configured to obtain one or more policy rules fromone or more sources and communicate with other functions to enforce theobtained policy rules. Policy sources may include, for example, a PCRF2410 node of a carrier network accessed via the IPX 2400 or anenterprise service/server, such as a directory service or VOIP service,accessed via Enterprise Network 2300. Similar to other services, thePolicy Management Service 2240 may include a distributed portion(“D-PMF”) and a corresponding cloud portion (“C-PMF”).

In some embodiments, a UE may cause the Policy Management Service 2240to retrieve (or “pull”) the policy rules from policy sources and beginenforcing the retrieved policies. For example, a UE may initiate theretrieval of the policy rules by sending an ATTACH request to the MMF.After receiving the ATTACH process, the MMF may send a request to a pullservice 2244 of the C-PMF such that the pull service 2244 retrieves thepolicy rules associated with the UE from various sources. Afterreceiving the policy rules, the C-PMF may send the policy rules (orinformation derived from the retrieved policy rules) to the MMF thatsent the request. Subsequently, the MMF may send the retrieved policyrules to the OPF assigned to the UE. In response to receiving the policyrules, the OPF may communicate with and configure the instance of theeNodeB Function 2112A assigned to the UE, and/or communicate with andcause SDN 2500 to configure one or more network devices 2150, based onthe retrieved policy rules. In some embodiments, the policy rules mayinclude traffic flow template (TFT), charging parameters associated withthe UE, traffic shaping parameters, and/or packet filters. The MMF mayaccept the ATTACH request by sending the UE an ATTACH ACCEPT message.

Additionally, or alternatively, a policy source may send (e.g., push) anew or updated set of one or more policy rules to the Policy ManagementService 2240, which causes enforcement of the new or updated rules. Forexample, a PCRF 2410 node of an external carrier network may send viathe IPX 2400 new or updated policy rules associated with a UE to a pushservice 2242 of the C-PMF. The PCRF 2410 may send the policy rulesperiodically or after one or more rules are altered.

After receiving the updated policy rules, the C-PMF may forward theupdated policy rules (or information derived from the updated policyrules) to the MMF of the AP associated with the UE. The C-PMF may querya lookup database to determine which AP is serving the UE, for example.Subsequently, the MMF may send the updated policy rules to the OPF ofthe instance of the EPC Function 2114A assigned to the UE. In responseto receiving the updated policy rules, the OPF may communicate with andconfigure the instance of the eNodeB Function 2112A assigned to the UEand/or communicate with and cause SDN controller 2500 to configure oneor more network devices 2150. After the configuration of variousfunctions and/or network devices based on the updated policy rules, theMMF may send a message to the policy source via the push service 2242 ofthe C-PMF to confirm that the updated policies are being enforced.

Alternatively, or additionally, after receiving the updated policy rulesfrom the PCRF 2410, the C-PMF may send at least a portion of the updatedpolicy rules and/or instructions based on the updated policy rules tothe SDN controller 2500. The SDN controller 2500, in turn, may configureone or more network devices 2150 based on the received policy ruleand/or instructions. In one example, the SDN controller 2500 mayinstruct one or more of the network devices 2150 (e.g., routers andswitches) to give priority to packets and frames thatoriginates/destined from/for a particular UE.

In some embodiments, the policy source may be a VOIP service (e.g.,Skype for Business) that pushes a policy rule containing quality ofservice parameters. In some embodiments, the quality of serviceparameters may include parameters for providing one or more users of theVOIP service with a priority access to the network (e.g., for a bettercall quality). The push process may be initiated when a user of the VOIPservice initiates a call. Additionally, or alternatively, another pushprocess may be initiated to restore the old quality of serviceparameters when the call is terminated.

In some embodiments, the C-PMF may further include one or more diameterservices 2246. Each diameter service 2246 may be configured tocommunicate with a node of an external carrier network (e.g., throughthe IPX 2400) using, for example, a standardized LTE interface protocol.For example, the C-PMF may include a diameter service 2246 thatcommunicates with a PCRF 2410 node using the S9 interface protocol.Additionally, or alternatively, the C-PMF may further include anotherdiameter service that communicates with a PCRF 2410 node using the Gxinterface protocol.

FIG. 5B illustrates an exemplary Billing Management Service 2250 inaccordance with the disclosed embodiments. The Billing ManagementService 2250 includes a distributed portion (“D-BMF”) and acorresponding cloud portion (“C-BMF”), and may provide online and/oroffline charging capabilities to an instance of the EPC Function 2114A.For example, an instance of the EPC Function 2114A may use APIs in theD-BMF to request the C-BMF to determine whether a UE 2120A is authorizedto use a network resource based on, for example, the user's accountinformation (e.g., amount of data and minutes pre-paid by the user ofthe UE 2120A) or the user's network usage information (e.g., the amountof data or minutes currently used by the UE 2120A).

In some embodiments, the C-BMF may receive the account information fromthe cloud portion of the User ID Service 2210, using for exampleHTTP/REST. In another example, an instance of the EPC Function 2114A mayuse APIs in the D-BMF to send the C-BMF information relating to the UE2120A's network usage. In some embodiments, the C-BMF may transfer thisinformation to an internal Billing Domain for the purposes of billingthe user of the UE 2120A, updating inter-operator accounting, and/ormonitoring usage of network resources. In some embodiments, the C-BMFmay send and/or receive network usage information to/from anothercarrier such that the UE 2120A's internal and external network usage maybe tracked and/or controlled. In some embodiments, the C-BMF maycommunicate with a Charge Data Function (CDF) node of the carrier's EPC1200 network through the IPX 2400, for example, using standardized LTEinterfaces Gy and Gz.

In the exemplary Billing Management Service 2250 of FIG. 5B, an offlinecharging capability is provided by the Billing Management Service 2250.For example, after an ATTACH request is received by the MMF from a UE,the MMF requests the C-BMF to retrieve charging-related configurationinformation associated with the UE. The charging-related configurationinformation may be locally stored at the C-BMF or, alternatively, theC-BMF may retrieve charging-related configuration information associatedwith the UE from an external source such as an Offline Charging System(OFCS) or Online Charging Scheme (OCS) accessed via the IPX 2400. Insome embodiments, the C-BMF may include a diameter service 2252configured to communicate with the external nodes using a standardizedinterface protocol, such as the Gz interface protocol, and the C-BMF mayretrieve the charging-related configuration information using thediameter service 2252. After receiving the charging-relatedconfigurations, the C-BMF may forward the charging-related configurationinformation to the MMF, and the MMF may provide at least some of theconfiguration information to the OPF. The OPF may measure accountingdata based on the received charging-related configuration information.For example, the OPF may measure the amount of data transmitted andreceived by the UE and/or the amount of time the UE is attached to thenetwork. In some embodiments, the OPF may provide interim updates (e.g.,usage data) to the C-PMF. After the OPF begins measuring the accountingdata, the MMF may accept the ATTACH request sent by the UE by sending anATTACH ACCEPT message to the UE.

FIG. 6A is a flow diagram of an exemplary process 6000 for obtainingpolicy rules according to the disclosed embodiments. At step 6010, a UEmay send send an ATTACH request to the MMF. At step 6020, the MMF maysend a request to a pull service 2244 of the C-PMF such that the pullservice 2244 of the C-PMF retrieves one or more policy rules associatedwith the U E from at least one source. At step 6030, the C-PMF may sendthe policy rules (or information derived from the retrieved policyrules) to the MMF that sent the request. At step 6040, the MMF may sendthe retrieved policy rules to the OPF assigned to the UE. At step 6050,the OPF may communicate with and configure the instance of the eNodeBFunction 2112A assigned to the UE and/or use SDN 2500 to configure oneor more network devices 2150 based on the retrieved policy rules. Insome embodiments, the policy rules may include traffic flow template(TFT), charging parameters associated with the UE, traffic shapingparameters, and/or packet filters. At step 6060, the MMF may accept theATTACH request by sending the UE an ATTACH ACCEPT message.

FIG. 6B is a flow diagram of another exemplary process 6100 forobtaining policy rules according to the disclosed embodiments. At step6110, a PCRF 2410 node of an external carrier network may send a set ofone or more new or updated policy rules associated with a UE to a pushservice 2242 of the C-PMF via the IPX 2400. At step 6120, the C-PMF maysend the updated policy rules (or information derived from the updatedpolicy rules) to the MMF of the AP associated with the UE. In someembodiments, the C-PMF may query a lookup database to determine which APis serving the UE, for example. In some embodiments, the C-PMF may sendat least a portion of the updated policy rules or an instructions basedon the updated policy rules to the SDN 2500 and cause the SDN 2500 toconfigure one or more network devices 2150. At step 6130, the MMF maysend the updated policy rules to the OPF of the instance of the EPCFunction 2114A assigned to the UE. At step 6140, the OPF may communicatewith and configure the instance of the eNodeB Function 2112A assigned tothe UE and/or use SDN 2500 to configure network devices 2150. At step6150, the MMF may send a message to the policy source via the pushservice 2242 of the C-PMF to confirm that the updated policies are beingenforced.

FIG. 6C is a flow diagram of another exemplary process 6200 forobtaining policy rules according to the disclosed embodiments. At step6110, an enterprise server/service may send VOIP policy rules associatedwith a UE to a push service 2242 of the C-PMF via the IPX 2400. In someembodiments, the enterprise server/service may send one or more VOIPpolicy rules, for example using the REST protocol. In some embodiments,the enterprise server may be a VOIP server such as a Skype for Businessserver. At step 6120, the C-PMF may send the VOIP policy rules (orinformation derived from the VOIP policy rules) to the MMF of the APassociated with the UE. In some embodiments, the C-PMF may query alookup database to determine which AP is serving the UE, for example. Atstep 6130, the MMF may send the VOIP policy rules to the OPF of theinstance of the EPC Function 2114A assigned to the UE.

At step 6140, the OPF may communicate with and configure the instance ofthe eNodeB Function 2112A assigned to the UE and/or use SDN 2500 toconfigure one or more network devices 2150. If the UE is starting acall, the OPF may configure the instance of the eNodeB Function 2112Aassigned to the UE and/or use SDN 2500 to configure network devices 2150to provide higher quality of service for the UE. If the UE isterminating a call, the OPF may configure the instance of the eNodeBFunction 2112A assigned to the UE and/or use SDN 2500 to configurenetwork devices 2150 to restore the original quality of service for theUE (prior to starting the call). At step 6150, the MMF may send amessage to the policy source via the push service 2242 of the C-PMF toconfirm that the updated policies are being enforced.

FIG. 7 is a flow diagram of exemplary process 7000 for providingcharging functions according to the disclosed embodiments. At step 7010,a UE may send an ATTACH request to the MMF from a UE. At step 7020, theMMF may request the C-BMF to retrieve charging-related configurationinformation associated with the UE. The charging-related configurationsmay be locally stored at the C-BMF or, alternatively, the C-BMF mayretrieve charging-related configurations associated with the UE from anexternal node such as an OFCS and/or OCS. In some embodiments, the C-BMFmay include a diameter service 2252 configured to communicate with theexternal nodes using a standardized interface protocol, and the C-BMFmay retrieve the charging-related configurations using the diameterservice 2252.

At step 7030, the C-BMF may send charging-related configurationinformation (e.g., or charging information derived therefrom) to theMMF. At step 7040, the MMF may provide at least some of thecharging-related configuration information to the OPF. At step 7050, theOPF may begin measuring the accounting data based on the receivedcharging-related configuration information. As noted above, for example,the OPF may measure the amount of data transmitted and received by theUE and/or the amount of time the UE is attached to the network. In someembodiments, the OPF may provide interim updates (e.g., usage data) tothe C-PMF. At step 7060, the MMF may accept the ATTACH request sent bythe UE by sending an ATTACH ACCEPT message to the UE.

FIG. 8 is a flow diagram of a process 8000 performed by an AP 2110 inaccordance with the disclosed embodiments. The AP 2110 may execute a setof one or more base-station functions for use by a UE, a set of one ormore core-network functions, and a distributed portion of a service. Atstep 8010, the set of one or more base-station functions may receiveinformation from the UE. At step 8020, the set of one or morecore-network functions may receive the information from the set of oneor more base-station functions. At step 8030, the distributed portion ofthe service may receive the information from the one or morecore-network functions. At step 8040, the distributed portion of theservice may communicate the information to a corresponding cloud portionof the service running on a cloud platform 2200. In some embodiments,the service may be provided by a combination of the distributed portionand the cloud portion of the service. At step 8050, the distributedportion of the service may receive a response from the cloud portion ofthe service based on processing performed by the cloud portion on thecloud platform.

Further to the disclosed embodiments of the invention, the cloud-basedwireless access infrastructure 2000 may establish each user's connectionto the wireless access infrastructure as an end-to-end set of resourcesacross multiple functional layers. For example, an instance of eNodeBFunction 2112A in the AP 2110 may use services to implement the airinterface layers (e.g., PHY and MAC layers) and radio access layer(e.g., RRM), and the MMF and the OPF of an instance of the EPC Function2114A, and may further use services to implement an enterprise networklayer, cloud resource layer, and enterprise application layer. Thisconnected set of resources across multiple layers representing a UE'swireless connectivity may enable configuration of the network devices2150 to provide different QoS and ranges of services for each user,handling mobility of the user across dissimilar wireless networks, andother desired infrastructure behavior configured on a per-user basis.

While illustrative embodiments have been described herein, the scope ofany and all embodiments having equivalent elements, modifications,omissions, combinations (e.g., of aspects across various embodiments),adaptations and/or alterations as would be appreciated by those skilledin the art based on the present disclosure. The limitations in theclaims are to be interpreted broadly based on the language employed inthe claims and not limited to examples described in the presentspecification or during the prosecution of the application. The examplesare to be construed as non-exclusive. Furthermore, the steps of thedisclosed routines may be modified in any manner, including byreordering steps and/or inserting or deleting steps. It is intended,therefore, that the specification and examples be considered asillustrative only, with a true scope and spirit being indicated by thefollowing claims and their full scope of equivalents.

What is claimed is:
 1. A controller in a cloud-based wireless accessinfrastructure, the cloud-based wireless access infrastructure includingone or more network devices and at least one user equipment (UE)configured to communicate in the cloud-based wireless accessinfrastructure, the controller comprising: a memory configured to storesoftware instructions for execution by at least one processor; and atleast one processor configured to execute the software instructions toconfigure the one or more network devices to provide an end-to-end setof resources across multiple functional layers from an enterpriseapplication layer to a radio access layer for a connection between theat least one UE and the cloud-based wireless access infrastructure. 2.The controller of claim 1, wherein the controller comprises a softwaredefined network (SDN) controller.
 3. The controller of claim 1, whereinthe controller is further configured to receive one or more instructionsto configure the one or more network devices from a cloud portion of aservice in the cloud-based wireless access infrastructure, wherein theservice is provided by a combination of the cloud portion of the serviceand a corresponding distributed portion of the service.
 4. Thecontroller of claim 3, wherein the distributed portion of the service isimplemented on an access point in the cloud-based wireless accessinfrastructure.
 5. The controller of claim 1, wherein the multiplefunctional layers further comprise at least one of an air interfacelayer, an enterprise network layer, or a cloud resource layer.
 6. Thecontroller of claim 5, wherein the air interface layer comprises atleast one of a physical (PHY) layer or a media access control (MAC)layer.
 7. The controller of claim 5, wherein the radio access layercomprises a radio resource management (RRM) layer.
 8. The controller ofclaim 1, wherein the end-to-end set of resources across multiplefunctional layers represents the at least one UE's wireless connectivityin the cloud-based wireless access infrastructure.
 9. The controller ofclaim 1, wherein the end-to-end set of resources across multiplefunctional layers is configured to provide a desired infrastructurebehavior configured on a per-user basis.
 10. The controller of claim 9,wherein the infrastructure behavior comprises a quality of service (QoS)for at least one user of the at least one UE.
 11. The controller ofclaim 1, wherein the one or more network devices comprise at least oneof a hub, a switch, or a router in the cloud-based wireless accessinfrastructure.
 12. A method performed by a controller in a cloud-basedwireless access infrastructure, the cloud-based wireless accessinfrastructure including one or more network devices and at least oneuser equipment (UE) configured to communicate in the cloud-basedwireless access infrastructure, the method comprising: receiving one ormore instructions to configure the one or more network devices from acloud portion of a service in the cloud-based wireless accessinfrastructure, wherein the service is provided by a combination of thecloud portion of the service and a corresponding distributed portion ofthe service; and configuring the one or more network devices based onthe one or more received instructions to provide an end-to-end set ofresources across multiple functional layers from an enterpriseapplication layer to a radio access layer for a connection between theat least one UE and the cloud-based wireless access infrastructure. 13.The method of claim 12, wherein the controller comprises a softwaredefined network (SDN) controller.
 14. The method of claim 12, whereinthe distributed portion of the service is implemented on an access pointin the cloud-based wireless access infrastructure.
 15. The method ofclaim 12, wherein the multiple functional layers further comprise atleast one of an air interface layer, an enterprise network layer, or acloud resource layer.
 16. The method of claim 12, wherein the end-to-endset of resources across multiple functional layers represents the atleast one UE's wireless connectivity in the cloud-based wireless accessinfrastructure.
 17. The method of claim 12, wherein the end-to-end setof resources across multiple functional layers is configured to providea desired infrastructure behavior configured on a per-user basis. 18.The method of claim 12, wherein the infrastructure behavior comprises aquality of service (QoS) for at least one user of the at least one UE.19. A cloud-based wireless access infrastructure, comprising: a cloudplatform running a cloud portion of a service; an access pointconfigured to communicate with at least one user equipment (UE) and withthe cloud platform, the access point comprising a distributed portion ofa service, wherein the service is provided by a combination of thedistributed portion and the cloud portion of the service; and one ormore network devices through which the distributed portion and the cloudportion of the service communicate for one or more user connections fromthe at least one UE to the cloud-based wireless access infrastructure,wherein the one or more network devices are configurable to provide anend-to-end set of resources across multiple functional layers from anenterprise application layer to a radio access layer for the one or moreuser connections to the cloud-based wireless access infrastructure. 20.The cloud-based wireless access infrastructure of claim 19, wherein theone or more network devices are configurable based on instructions fromthe cloud portion of the service.
 21. The cloud-based wireless accessinfrastructure of claim 19, wherein the cloud-based wireless accessnetwork further comprises a software defined network (SDN) controller,wherein the one or more network devices are configurable by the SDNcontroller.